Partners

About Us

Founded in 2000, Secure Technology Integration Group, Ltd. (STIGroup) is an innovative firm that provides CyberSecurity consulting, secure IT engineering, managed security services, and human capital solutions. STIGroup delivers the people, process and technology that enable our client’s CyberSecurity programs.

STIGroup has the resources necessary to structure and implement a complete CyberSecurity program for your business, or to supplement an existing program by providing resources and expertise to fill a gap in the program or execute on a tactical project. STIGroup also has the strategic partnerships with product vendors, law enforcement, and legal representation to facilitate the handling of these areas as they relate to CyberSecurity and IT.

Our proven methodology combines information security lifecycle best practices with a client-specific engagement model. This allows businesses to utilize technology aggressively, while maintaining the confidentiality, integrity and availability of mission-critical information.

Headquarters:
201 Rock Road, Suite 2X
Glen Rock, NJ 07452

Phone: 201-825-1255
Toll Free: 888-881-6661
Sales: ext. 3
Technical Support: ext. 9
Incident Response: ext. 7
Email: info@stig.net

CYBERSECURITY CONSULTING

The STIGroup CyberSecurity Consulting team has extensive experience, and an established track record of success, in the planning, execution, and validation of all components of CyberSecurity programs for businesses. Whether your business requires the implementation of a comprehensive CyberSecurity program based on an industry-standard control framework or regulatory standard, or a tactical engagement such as a penetration test or an incident response exercise to address a requirement in your existing program, STIGroup can provide the CyberSecurity professionals, and the proven methodologies, to meet your needs. STIGroup provides CyberSecurity Consulting services that include:

  • Security Policy Development
  • Security Posture Assessment
  • Penetration Testing
  • PCI-DSS Compliance Consulting
  • HIPAA/HITECH Compliance Consulting
  • NIST/FISMA Compliance Consulting
  • NYSDFS Compliance Consulting
  • Incident Response and Forensics
  • Industrial Control System (ICS) Security
  • Security Controls Implementation
  • 3rd Party Service Provider Risk Assessment
  • Cyber-Response Exercises
  • Security Operations Program Design

Our team has experience providing these services, and dealing with the associated nuances, in a variety of industries including, but not limited to: financial, healthcare, insurance, ecommerce, manufacturing, retail, and mass transit. We maintain partnerships with both established and leading-edge CyberSecurity technology product companies to bring our clients the optimum combination of solutions. The capabilities of the STIGroup CyberSecurity Consulting team go beyond assessment of your security controls and identification of issues- we implement the technical and procedural controls necessary to enable your CyberSecurity program.

SECURE IT ENGINEERING

CyberSecurity in your technology environment involves not only implementation of cybersecurity technologies, but also the ‘security-hardened’ implementation and integration of complex networking and system technologies.  STIGroup has a Secure IT Engineering team with a strong depth of knowledge and hands-on capability with networking and systems technologies, both on premises and in the cloud.  Our team provides IT consulting, engineering, and operational services that enable your business to make use of technology while maintaining an optimum cybersecurity posture:

  • Server, Cloud & Data Center Solutions
    • Cloud Strategy & Migrations
    • Platform Migrations & Upgrades
    • Data Center Solutions
  • Systems Integration and Automation
    • Linux
    • Windows
  • Network Design and Implementation
    • Local Area Networks (LAN)
    • Wide Area Networks (WAN)
    • Wireless Networking
  • Managed IT Support
    • Networks
    • Servers
    • End User Support
  • Microsoft Technologies
    • Active Directory
    • SQL
    • Exchange
    • Skype for Business
    • Office365

All IT services provided by STIGroup are executed with security in mind, resulting in technology implementations that are inherently resistant to cybersecurity threats, while maintaining the level of operability, performance, and availability essential to your business operations.

MANAGED SECURITY SERVICES

CyberSecurity is a process. In order for security technologies to be effective, they need to be managed and monitored by skilled personnel around the clock. Security event information needs to be analyzed and correlated to gauge the threat and determine the proper course of action, then the response needs to be coordinated and executed. The systems then need to be tuned to continually improve the capability to mitigate cyber-threats in your technology environment. STIGroup has a state-of-the-art Security Operations Center (SOC) that is staffed 24x7x365 by personnel skilled in CyberSecurity monitoring, security event analysis, and incident response. We provide a comprehensive suite of managed security services for our clients:

  • Intrusion Detection & Prevention
  • Security Info. & Event Management (SIEM)
  • Endpoint Detection & Response (EDR)
  • Next Generation Antivirus (NGAV)
  • Threat Hunting
  • Breach Detection
  • Web Application Firewalling
  • Security Infrastructure Management
  • CyberSecurity Program Management
  • Security Operations Management

STIGroup’s managed security service offerings are customized for our clients. We use best-of-breed technologies in combination with optimal process design and human intelligence to enable our client’s CyberSecurity programs.

HUMAN CAPITAL SOLUTIONS

STIGroup provides comprehensive Human Capital Solutions to assist organizations with building and sustaining CyberSecurity and IT teams. Our team of CyberSecurity, IT, and human resources experts can execute on part or all of the essential components of building your team, or simply filling a critical open position. STIGroup Human Capital Solutions provides:

  • Staff requirements analysis
  • Compensation package development
  • Full-time candidate sourcing and placement
  • Temp-to-hire sourcing and placement
  • CyberSecurity and IT outsourcing
  • Onboarding process design
  • Human Resources program consultation

Our practice is focused on complimentary markets, allowing us to significantly amplify the value to our clients:

Commercial Business – Commercial organizations often find themselves in the difficult position of having to find, evaluate, hire, and retain CyberSecurity and IT talent in an aggressively evolving, and unforgiving, cyber-threat landscape. STIGroup’s long-standing industry relationships, and unique model of candidate sourcing and vetting, allow us to find CyberSecurity and IT personnel for your organization that are both a skills fit and a cultural fit, greatly enhancing the prospects for longevity of employment. While your open position(s) are in the process of being filled, STIGroup can provide CyberSecurity and IT resources to bridge the gap so that your organization is not pressured to make an ill-informed hire, which can have a severe negative financial impact. Our CyberSecurity expertise and industry relationships with cutting-edge technology companies allow us to introduce efficiencies to your CyberSecurity program in the process of building your team.

CyberSecurity Technology Startup – Early-phase technology startups in CyberSecurity have a unique set of requirements for the development of teams in management, sales, and engineering. STIGroup is uniquely positioned and experienced in helping CyberSecurity technology startups meet the challenge of aggressively building a winning team, entering the target markets, and scaling revenue and operations. While we’re in the process of building your team, we can fill your organizational gaps with our sales team, our engineering team, and our managed services team, to ensure that your business goals are met in the interim. Our core service teams are constantly engaged in strategic client projects, which allows us to add significant value to your product development and market positioning efforts.

LEADERSHIP

DOMINIC GENZANO
CHIEF EXECUTIVE OFFICER

Dominic Genzano is the CEO and founder of STIGroup, where he leads the continued development of the CyberSecurity services strategy. As an established cybersecurity industry expert, and a principal consultant of STIGroup, he has led significant security initiatives for major private corporations and public sector entities since the company’s inception. Mr. Genzano has played a significant role in many high profile incident response situations ranging from Internet-based application exploits to sophisticated cybercrimes involving insider activity. He uses this experience, in conjunction with his extensive background in Information Security principals and technology, to develop and implement security programs and control strategies that effectively mitigate real-world threats.

Prior to founding STIGroup, Mr. Genzano developed and led the Information Security Consulting practice for Digital Network Associates, a Manhattan-based network integration firm, at a time when information security as an industry was in its infancy. His vast information security and technology experience also includes employment at Citicorp, EMI Records, and the Dreyfus Corporation, as well as course development and instruction at Columbia University and New York University.

JONATHAN KOBRICK
CHIEF OPERATING OFFICER

Jonathan Kobrick is the COO at STIGroup, where he oversees and participates in the CyberSecurity Consulting, Secure IT Engineering, and Managed Security Services divisions. He develops and manages Client and Partner relationships and drives strategic enhancements of the managed services infrastructure, incident response procedures, and security operations center training.

Mr. Kobrick performs work in a variety of InfoSec and IT areas across numerous industries, including security risk assessment, policy development, security audit, forensic investigation, network security architecture design and implementation, system/application security, compliance, enterprise IT systems architecture, and open source/cloud technologies. He conducts various training courses in areas including InfoSec concepts and Operating System Security.

Prior to joining STIGroup, Mr. Kobrick was a Senior Consultant in the Technology Risk Consulting group at Andersen, LLP, where he led engagements involving enterprise technology controls assessment and perimeter/internal network, host, and application security reviews. Mr. Kobrick holds a B.S. degree in Management with an MIS concentration from Binghamton University. In addition, he holds a Network Administration and Design certificate from Columbia’s CTA program, as well as a number of industry certifications (CISSP, GIAC, etc.).

DAVID M. GORDON
PRESIDENT

David Gordon is the President at STIGroup, Ltd. where he leads Sales, Business Development, and Marketing, and serves on the Executive Team. Mr. Gordon is a key contributor for all STIGroup, Ltd. external initiatives. He is chartered with the overall health and growth of the business, as well as driving key partnerships with clients and strategic security vendors.

Mr. Gordon is a security business veteran with previous pre-acquisition leadership experience at McAfee, CarbonBlack, and LightCyber, as well as a 25+ year career in information technology. He is a member of OWASP, and contributes security business expertise at many events including BlackHat, FS-ISAC, RSA, and Data Connectors.

Mr. Gordon holds a B.A. degree in English Literature and Political Science from William Paterson University. He also participated in the year abroad program at London School of Economics.

PENELOPE SANTANA
CYBERSECURITY
CONSULTING MANAGER

Penelope Santana heads the CyberSecurity Consulting practice at STIGroup.  She is responsible for the development and execution of the programmatic and technical cybersecurity service offerings.  Since joining STIGroup in 2010, Ms. Santana has led the successful execution of high profile client engagements dealing with regulatory compliance, risk assessment, and remediation management.  A proven and established industry professional, she now leads a team of cybersecurity experts that design and implement cybersecurity programs, and deliver on challenging technical engagements in the areas of penetration testing, incident response, and risk mitigation.

Ms. Santana has over 15 years of cumulative experience in IT and cybersecurity.  She holds several industry certifications, including CISSP and PCIP, and is an active participant on the Shared Assessments committee where she contributes to industry standard risk assessment methodologies.

NIHIR JARIWALA
DIRECTOR OF TECHNOLOGY PLATFORMS & OPERATIONS

Nihir Jariwala runs the Secure IT Engineering practice at STIGroup.  Since joining the company in 2004, Mr. Jariwala has personally led the execution of significant client engagements, mentored continued excellence in his team, and architected virtually all of STIGroup’s IT service offerings.  Mr. Jariwala is recognized as a thought leader and subject matter expert in Virtualization and Microsoft Enterprise platforms, and leads a team of top professionals that deliver on complex projects in networking, systems, and cloud technology.

Mr. Jariwala has over 17 years of information technology and cybersecurity experience.  He is a graduate of the Columbia University CTA program, and holds several industry and technical certifications including VCP, MCP, CCA, and RSA-CSP.

LEE FRIEDMAN
SECURITY OPERATIONS MANAGER

Lee Friedman has been with STIGroup since 2003.  He is responsible for the management and continued development of the Managed Security Services division as well as the STIGroup Security Operations Center (SOC).  He manages a team of analysts and engineers that provide 24×7 security monitoring and incident response services, and he continues to regularly play a significant role in challenging technical engagements.

Mr. Friedman holds a Bachelor’s Degree in Biology and Psychology from the State University of New York at Stony Brook, a Network Administration and Design certificate from Columbia University’s CTA program, as well as several career certifications such as CCNA Security and CCDA.

JOHN LABIANCA
VICE PRESIDENT
HUMAN CAPITAL SOLUTIONS

John LaBianca is Vice President, Human Capital at STIGroup. Prior to joining STIGroup, John led Global Organizational Development at the National Basketball Association (NBA), where he held key HR leadership positions for over 12 years including heading up the Talent Acquisition function. Flagship initiatives included Executive Leadership Development, Performance Management, and the NBA Employee Engagement Survey. Mr. LaBianca also built NBA University into an industry leading learning and development brand.

Prior to joining the NBA, Mr. LaBianca held leadership positions at BNY Mellon, Buck Consultants, EY, and PwC.

Mr. LaBianca has delivered over 20 years of strategic HR innovation. He is a subject matter expert in OD/OE design and strategy, talent acquisition, talent development, employee engagement, performance management, leadership coaching, and overall HR thought leadership.

Mr. LaBianca holds an MA in Organizational Psychology and is certified as a Senior Professional in Human Resources (SPHR), Executive Coach, and an Emotional Intelligence (EQ) facilitator and coach.